This repo demonstrates how to create "permissioned markets" on Serum via a proxy smart contract. A permissioned market is a regular Serum market with an additional open orders authority, which must sign every transaction to create an open orders account.
In practice, what this means is that one can create a program that acts as this authority and that marks its own PDAs as the owner of all created open orders accounts, making the program the sole arbiter over who can trade on a given market.
For example, this program forces all trades that execute on this market
to set the referral to a hardcoded address--referral::ID--and requires
the client to pass in an identity token, authorizing the user.
See the code.
This program requires building the Serum DEX from source, which is done using git submodules.
Pull the source
git submodule init
git submodule updateAnchor is used for development, and it's recommended workflow is used here. To get started, see the guide.
To install Anchor and all local dependencies, run
yarnTo build, run
yarn buildA set of integration tests are provided. See these for an example of how to use a permissioned market from JavaScript.
yarn testTo start a localnetwork with both the dex and proxy deployed and an orderbook listed with posted orders, first install the "crank" cli.
cargo install --git https://github.com/project-serum/serum-dex crank --locked --tag v0.4.0Then run,
yarn localnetTo connect a GUI to the localnet, either run one locally or go to
dex.projectserum.com and select the localnet network and enter the
market address: FcZntrVjDRPv8JnU2mHt8ejvvA1eiHqxM8d8JNEC8q9q.
In short, go to this link.
Don't forget to click the + button to "Add a custom market" so that the GUI
can recognize the market running locally.
To implement a custom proxy, one can implement the MarketMiddleware trait to intercept, modify, and perform any access control on DEX requests before they get forwarded to the orderbook. These middleware can be mixed and matched. Note, however, that the order of middleware matters since they can mutate the request.
One useful pattern is to treat the request like layers of an onion, where each middleware unwraps the request by stripping accounts and instruction data before relaying it to the next middleware and ultimately to the orderbook. This allows one to easily extend the behavior of a proxy by adding a custom middleware that may process information that is unknown to any other middleware or to the DEX.
After adding a middleware, the only additional requirement, of course, is to make sure the client sending transactions does the same, but in reverse. It should wrap the transaction in the opposite order. For convenience, an identical abstraction is provided in the JavaScript client.
Note that this middleware abstraction is not required to host a permissioned market. One could write a regular program that manages the PDAs and CPI invocations oneself.